Information on the collection of personal data in accordance with the EU General Data Protection Regulation (GDPR)
Below you will find an overview of where we collect and process your personal data and your rights under the GDPR
.
Names and contact details of the Controller
the responsible party is
Messe Frankfurt Exhibition GmbH
- all hereinafter referred to as Messe Frankfurt and can be reached at -
Ludwig-Erhard-Anlage 1
60327 Frankfurt am Main
Germany
Telephone: +49 69 75 75 0
Email address: info@messefrankfurt.com
You can reach the data protection officer for these companies at:
Messe Frankfurt GmbH
Data Protection Office
Ludwig-Erhard-Anlage 1
60327 Frankfurt am Main
Germany
Telephone: +49 69 75 75 53 35
Email adress: privacy@messefrankfurt.com
Purposes for which personal data is processed and their legal basis
For some events, tickets also include an account for the digital event platform.
Below you will find general information on data processing in Part A and information on the digital Event Platform in Part B.
Part A
Cookies & Co.
Messe Frankfurt uses the Usercentrics Consent Management Platform to inform you about cookies and similar technologies on our websites and applications. If necessary, we request and document your consent to the setting of cookies. The legal basis is point (a) of Article 6 (1) GDPR, § 25, Para. 1, S.1 TTDSG. For this purpose, we process log file data, user agent (device, browser type, browser language, browser version, resolution) and consent data (consent yes/no, timestamp, data scope, data attributes, controllerID, processorID, consentID) via the Consent Management Platform using Javascript.
The data is stored in the European Union. The data is deleted as soon as it is no longer required for the proof of the information provided and consent to the cookies and there are no legal storage obligations to the contrary.
You can permanently prevent the execution of the JavaScript at any time by making the appropriate settings in your browser. However, this would also prevent us from informing you about cookies.
You can access the Consent Management Platform via the following link. Here you can find out about the purpose, duration and recipient of the cookie data and, if you wish, also revoke your consent at any time.
Here you can manage your cookie settings.
Log files
When you visit our websites, Messe Frankfurt stores the IP address, the time of access, the URL requested and the browser used. Messe Frankfurt uses this data to detect errors in the execution of the pages and to ensure the IT security of websites and applications as well as their availability. The data is deleted after 90 days. The legal basis for this is point (f) of Article 6 (1) GDPR.
Messe Login
The Messe Frankfurt Group offers a wide range of digital services. Access to this, e.g. to online ticketing or the digital Event Platform, is provided with a personal account via the authentication portal Messe Login, as a single sign-on system. To open an account, you need to enter your title, name, e-mail address and country. Depending on the services used, further details may be required. To ensure that the owner of the email address actually wishes to open the account, a double opt-in procedure is implemented. If the use of the Messe Login involves the transfer of data to foreign companies of the Messe Frankfurt Group, we will inform you of this in advance. The legal basis is point (b) of Article 6 (1) GDPR. You can delete your Messe Login at any time, but you will then no longer be able to use the digital services.
Tickets
Tickets with info service can be purchased under the condition that you consent to the advertising purposes. These tickets are offered at a discounted price. Tickets without info service can be purchased without advertising consent. The legal basis for this is point (a) of Article 6 (1) GDPR.
Online Ticketing
If you would like to buy a ticket online, we need your contact details and email address. These will be used to create the invoice for the ticket purchase and to send you the link to download the ticket. Please use your personal Messe Login to enter your data. In the interest of data economy, your data is stored there once and can then be used for many applications. In addition, the email address is verified via Messe Login to ensure that the owner of the email address wishes to order the ticket. The legal basis for this is point (b) of Article 6 (1) GDPR.
Voucher exchange
The exchange of vouchers is compulsorily linked to the consent to be to be contacted for advertising purposes (info service). The legal basis for this is point (a) of Article 6 (1) GDPR.
Exhibitors purchase vouchers from Messe Frankfurt to pass on to their customers. In order to inform exhibitors of the vouchers actually used or to settle accounts with them, Messe Frankfurt shall inform the exhibitor by whom the vouchers were redeemed. The legal basis for this is point (f) of Article 6 (1) GDPR.
Personalise your ticket
Please enter the title, name and company to be indicated on the ticket. You can use your registration data for this purpose.
Please also note that only the person whose name is printed on the ticket is entitled to use local public transport. Only printed tickets are valid for local public transport.
Consent
With your consent to be contacted for advertising purposes, we will pass on your data within the Messe Frankfurt Group and to the Messe Frankfurt Sales Partner responsible for your home country. A list of the Messe Frankfurt Group companies and sales partners can be found here. (link auf die englische Seite setzen Global network (messefrankfurt.com)) If they are located outside the EU, we have taken appropriate measures in accordance with Art. 46 GDPR to ensure compliance with data protection. The legal basis is point (a) of Article 6 (1) GDPR.
nmedia.hub
Visitors to selected events receive the right to open a free account on the nmedia.hub order platform with the purchase of a ticket. The platform is operated by nmedia GmbH, Kirchfeldstraße 69A, 40217 Düsseldorf.
In order to prepare the opening of the account for authorised visitors, Messe Frankfurt transmits the name, title, email address, company, interests and economic sector specified when purchasing the ticket to nmedia GmbH. nmedia GmbH processes the data exclusively in order to send the visitor his personal access data for the nmedia.hub platform. The visitor decides whether to open the account and use the nmedia.hub platform. If the visitor does not open an account on nmedia.hub, the transmitted data will be deleted by nmedia GmbH seven calendar days after the end of the above-mentioned event. The legal basis for this is point (b) of Article 6 (1) GDPR.
Your ticket as a business card (Lead Success).
The contact details you provide when registering can be accessed via the code on an admission ticket. This gives you the opportunity to provide your contact details to the person you are talking to by allowing them to scan the code on your admission ticket. With this consent, Messe Frankfurt will then provide your contact details to your contact person. The legal basis for this is point (a) of Article 6 (1) GDPR. Our service provider MES Messe Event Service GmbH has been commissioned with the implementation.
Video surveillance
In order to control the flow of traffic/visitors and for security purposes, the exhibition grounds are under video surveillance, which is indicated accordingly at the entrances. There will be no evaluation for other purposes. The state police also have access to the video surveillance for the performance of their sovereign duties. The legal basis is point (f) of Article 6 (1) GDPR.
Part B
Your user account on the Event Platform
To create your user account on the Event Platform, your authentication data from the Messe login and the contact data you provided when purchasing your ticket will be used. By logging into your Messe login (see above), you gain direct access to the Event Platform. The platform is available for an unlimited period of time. You can deactivate your user account on the Event Platform and also your Messe login at any time. In this case, however, you will no longer be able to use the Event Platform. The legal basis for this is point (b) of Article 6 (1) GDPR.
Partial visibility of your profile
On our Event Platform, you browse partially visible with your profile consisting of first name, last name and company. If you use this profile setting to view a company page, the contact of the employees of these companies, a lecture or presentation, the above-mentioned profile data will be stored for the respective provider of the information. This gives them the opportunity to perceive you as a business partner and to contact you on the Event Platform. You can adjust the visibility of your profile in the settings for your user account. If you deactivate the visibility of your profile, you will still be visible to the other participants in the Networking section with your first name, surname and company and will therefore be contactable. The legal basis for this is point (a) and (b) of Article 6 (1) GDPR.
Matchmaking
Matchmaking helps you network on the platform and is a core component of our digital event platform. This allows you to make contacts on the platform and hold conversations that are relevant to you. By entering your details in the categories "I'm looking for" and "I'm offering" in an industry-relevant taxonomy, you can define your interests. On the basis of these interests, the system suggests suitable conversation partners to all participants. The first name, last name, company and interests are displayed in the suggestions. Only when both partners accept the contact suggestion are the e-mail and telephone number for contacting each other also displayed. You can adjust your interest details at any time in the settings of your user account. There you can also deactivate the sending of e-mails. Contact suggestions will then no longer be sent to you. However, you can still find your contact suggestions in the Networking section. The legal basis for this is point (b) of Article 6 (1) GDPR.
Contacting
If you send a contact request on the Event Platform, make an appointment or leave your business card, the recipient of your request will be informed of your first name, last name, company, e-mail address and telephone number. The legal basis for this is point (a) of Article 6 (1) GDPR.
In the following functions, the first name, surname and company of the participants are displayed in each case? You can change this content and visibility of your profile in the settings. The legal basis for this is point (a) of Article 6 (1) GDPR.
Round tables
Round tables are event-independent open and closed chat rooms that can be used for conversations and open exchange within the Event Platform. The open areas are accessible to all users and are moderated. The closed areas are only possible by invitation of other users and are intended for private exchange. The organiser of a round table receives a list of all participants (first name, last name, company).
Ad-hoc Video Calls
If available at an exhibitor, visitors can also make ad-hoc video calls. This means you can reach an exhibitor by video call without having made an appointment beforehand.
For the presentation of round tables and videos, we use the following providers, whose data protection information you can find out about by clicking on the links provided.
Zoom https://explore.zoom.us/en/cookie-policy/
Jitsi https://jitsi.org/meet-jit-si-privacy/
Amazon Chime https://docs.aws.amazon.com/chime/latest/ag/what-is-chime.html
Video Streaming
Video streaming can only be used by exhibitors and Messe Frankfurt Exhibition GmbH as broadcasters. Visitors to the event participate as viewers of the corresponding streaming channel. Participation in streaming content (lectures, workshops) will be tracked anonymously for evaluation purposes. For video streaming we use the following provider, whose data protection information you can find out about via the links provided.
Vimeo https://vimeo.zendesk.com/hc/en-us/articles/224817847-Privacy-settings-overview
Chat function accompanying streaming
Parallel to the video streaming, all users can exchange information in an accompanying chat. This is a non-closed communication. For all participants of the video streaming, the respective contributions (posts) of the other participants are visible. For the chat function, we use the following provider, whose data protection information you can find out about via the links provided.
Slido https://www.sli.do/terms#privacy-policy
Video chats
All users can make appointments with each other and then exchange information via an integrated chat. This can also be done via an intergated video telephony solution, as it were.
1 to 1 Chat
Participants of the Event Platform can chat with each other via a message exchange.
For the two aforementioned chat functions, we use the following provider, whose privacy policy you can find out about via the links provided.
Firebase https://firebase.google.com/support/privacy
Voting, Polls
For official event content (talks and presentations), the Event Platform is equipped with a module that allows the moderator to solicit votes and surveys from the audience. There is no obligation to participate in votes or polls.
Recipients of personal data
Only those recipients that have a compelling need to access your data in accordance with the above-mentioned purposes will be granted access to it. In this context, order processors and other service providers used by us may also receive data. These are companies in the category of IT services, call centre services and telecommunications. Messe Frankfurt Venue GmbH is commissioned with the sale and issue of tickets and other access authorisations as well as with the implementation of access controls for events at the exhibition ground in Frankfurt.
We have concluded the legally required contractual regulations with our processors in accordance with Article 28 GDPR, on purpose limitation, confidentiality and, where necessary, secrecy. Beyond this, we only pass on data if regulations permit or require this or you have consented to this.
Transfer to third country
Depending on your consent to be contacted for advertising purposes and your use of the Messe Login, data may be transferred to recipients in third countries. However, as mentioned above, we will inform you of this in advance. In the context of remote maintenance of standard IT components, it cannot be ruled out in individual cases that an IT service provider from a third country may, in rare cases and to a limited extent, gain access to personal data for troubleshooting purposes. However, data will only be transferred if the third country has been confirmed by the EU Commission as having an adequate level of data protection or has concluded EU standard contractual clauses.
Automated decision-making & Profiling
We do not use automated decision-making or profiling for the listed processing purposes.
Your rights under GDPR
With regard to the personal data concerning you, you have the following rights under the GDPR.
You have the right to obtain confirmation as to whether or not your data is being processed and about how we collect, process and store this data, Article 15 GDPR.
You can demand the rectification of inaccurate data or completion of incorrect or incomplete data, Article 16 GDPR.
According to Article 17 of the GDPR, you have the right to demand the erasure of data, e.g. if the data is no longer required or is being processed unlawfully, if you have withdrawn your consent or declared an objection to the processing. Under certain circumstances, erasure can only take place when there are no longer any legal obligations to archive data.
You can also request the restriction of data processing under the conditions of Article 18 GDPR.
In certain cases, you have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format. At the same time, you have the right to transfer this data to another controller or, if technically feasible, to have it transferred by us, Article 20 GDPR.
Pursuant to Article 7 (3) GDPR, you may revoke your consent to the processing of your personal data at any time with effect for the future.
Pursuant to Article 21 GDPR, you have the right to object to the processing of your personal data to protect the legitimate interests of us or a third party (point (f) of Article 6 (1) GDPR), unless we can prove compelling reasons for the processing that merit protection.
In addition, you have the right to lodge a complaint pursuant to Article 77 GDPR in conjunction with. § 19 BDSG, you have the right to lodge a complaint with a data protection supervisory authority, such as the Hessian State Data Protection Authority.
(Version 2/2023)